March 20, 2013 6:26 PM
At CloudFlare, we deal with large DDoS attacks every day. Usually, these attacks are directed at large companies or organizations that are reluctant to talk about their details. Sometimes a customer is willing to let us tell their story....
March 03, 2013 1:47 PM
This morning at 09:47 UTC CloudFlare effectively dropped off the Internet. The outage affected all of CloudFlare's services including DNS and any services that rely on our web proxy....
December 21, 2012 3:41 AM
Looking at the latest DDoS attack statistics from CloudFlare's network, it seems that hackers love the holidays....
November 27, 2012 11:49 PM
There is a significant conflict in the Middle East. As has been widely reported, along with the physical confrontation between the Israelis and Palestinians, there have been widespread cyber attacks....
October 30, 2012 7:54 AM
A few weeks ago I wrote about DNS Amplification Attacks. These attacks are some of the largest, as measured by the number of Gigabits per second (Gbps), that we see directed toward our network....
August 28, 2012 5:44 PM
CloudFlare's I'm Under Attack mode allows our customers to, at the click of a button, tell us that they are experiencing an attack and enable automatic protection. It works by slowing down visits to the web site that's under attack and performing extra work to identify malicious ...
August 16, 2012 8:58 AM
Recently, I've taken a look at DDoS attacks against CloudFlare sites at the IP level and the source of those attacks. The worst time for those DDoS attacks is the Wednesday Witching Hour and because of source IP address forgery most of the attacks seem to come from Mars. ...
August 06, 2012 2:06 PM
Following on from my recent post about when attacks hit CloudFlare, here's a follow up looking at where they come from. Or at least where they say they come from. Looking at attack statistics for the month of July 2012 the largest source of attacks is Mars....
August 03, 2012 3:06 PM
Data from inside CloudFlare's network shows that over 40% of the time there's a denial of service attack happening and directed at us. And that's just up to network layer 4 (i.e. it doesn't include more sophisticated attacks targeting applications themselves at layer 7)....
June 04, 2012 10:02 PM
A core value CloudFlare is that security information should be shared between organizations to make the entire Internet safer. That is how CloudFlare's systems work: if one site is attacked, data about that attack is immediately shared with the rest of the network so other sites ...
June 01, 2012 10:22 PM
This morning a hacker was able to access a customer's account on CloudFlare and change that customer's DNS records. The attack was the result of a compromise of Google's account security procedures....
December 21, 2011 11:04 PM
As the year comes to a close, we've been assembling trend data for 2011. One of the most interesting has been the rise of denial of service (DDoS) attacks. Controlling for CloudFlare's growth, we've seen a 700% increase in DDoS attacks over the course of the year....
December 15, 2011 12:28 AM
I was talking last week with Shawn Graham, a reporter at Fast Company, and he asked a simple but interesting question: do hackers take the holidays off?...
November 16, 2011 6:59 PM
The United States House of Representatives is considering the Stop Online Piracy Act, known as SOPA. Companies including Google, Zynga, Facebook, Yahoo, AOL, and Mozilla, along with organizations like the Electronic Frontier Foundation (EFF) have been sharply critical of the law....
August 24, 2011 11:54 PM
Early this morning word spread that there was a zero day exploit dubbed the "Apache Killer." The exploit uses malformed Apache byte-range headers to crash the web server. The exploit is effective against the latest versions of Apache as well as versions back to v1.3. ...
July 20, 2011 6:12 PM
Google did something terrific yesterday. They began notifying users with a certain kind of malware running on their PCs that they had a problem and linked them to tools to help clean it up. While it is currently limited, we think this is an important step by Google....
May 18, 2011 5:16 PM
We always talk about how CloudFlare gets smarter, and we do that in a variety of ways. One of the ways is that we look at changes in traffic to a site. If there is a big change, then our system automatically starts to investigate whether it is legitimate traffic or an attack. ...
